Vulnerability CVE-2021-26085
Published: 2021-08-03

Description:
Affected versions of Atlassian Confluence Server allow remote attackers to view restricted resources via a Pre-Authorization Arbitrary File Read vulnerability in the /s/ endpoint. The affected versions are before version 7.4.10, and from version 7.5.0 before 7.12.3.

See advisories in our WLB2 database:
Topic
Author
Date
High
Atlassian Confluence Server 7.5.1 Arbitrary File Read
Mayank Deshmukh
06.10.2021

Type:

CWE-200

 (Information Exposure)

 References:
https://jira.atlassian.com/browse/CONFSERVER-67893
Copyright 2024, cxsecurity.com

 

Back to Top